CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,153 vulnerabilities with CWE-787
CVE-2025-1539 HIGH
D-Link DAP-1320 1.00 - Stack-Based Buffer Overflow in replace_special_char Function
CVSS 8.8
CVE-2025-1538 HIGH
D-Link DAP-1320 1.00 - Heap-Based Buffer Overflow via set_ws_action Function
CVSS 8.8
CVE-2025-1471 HIGH
Eclipse OMR 0.2.0-0.4.0 - Out-of-bounds Write in z/OS atoe Print Functions
CVSS 7.8
CVE-2025-25664 CRITICAL
Tenda AC8V4 V16.03.34.06 - Stack Overflow via shareSpeed Parameter
CVSS 9.8
CVE-2025-25663 CRITICAL
Tenda AC8V4 V16.03.34.06 - Stack-based Buffer Overflow via WifiExtraSet wpapsk_crypto Argument
CVSS 9.8
CVE-2025-27091 HIGH
OpenH264 < 2.5.1 - Heap-based Buffer Overflow via SPS and non-IDR NAL Unit Race Condition
CVSS 7.5
CVE-2025-0677 MEDIUM
Red Hat Enterprise Linux 10 - Out-of-bounds Write in GRUB2 UFS Symlink Handling
CVSS 6.4
CVE-2025-0624 HIGH
Red Hat Enterprise Linux 7 Extended Lifecycle Support - Out-of-bounds Write in grub2 Network Boot Configuration
CVSS 7.6
CVE-2025-1414 MEDIUM
Firefox < 135.0.1 - Out-of-bounds Write
CVSS 6.5
CVE-2025-1340 HIGH
TOTOLINK X18 9.1.0cu.2024_B20220329 - Stack-Based Buffer Overflow in setPasswordCfg
CVSS 8.8
CVE-2025-26508 CRITICAL
HP FutureSmart 3 < 2309118_002276 - Remote Code Execution and Elevation of Privilege via PostScript Print Job
CVSS 9.8
CVE-2025-26519 HIGH
musl libc 0.9.13-1.2.5 - Out-of-bounds Write via EUC-KR to UTF-8 Iconv Conversion
CVSS 8.1
CVE-2025-25901 HIGH
TP-Link TL-WR841ND V11 - Denial of Service via dnsserver1 and dnsserver2 Parameters
CVSS 7.5
CVE-2025-25898 HIGH
TP-Link TL-WR841ND V11 - Denial of Service via pskSecret Parameter Buffer Overflow
CVSS 7.5
CVE-2025-25897 HIGH
TP-Link TL-WR841ND V11 - Denial of Service via 'ip' Parameter Buffer Overflow
CVSS 7.5
CVE-2025-25746 CRITICAL
D-Link DIR-853 A1 FW1.20B07 - Stack-Based Buffer Overflow via SetWanSettings Password Parameter
CVSS 9.8
CVE-2025-25744 CRITICAL
D-Link DIR-853 A1 FW1.20B07 - Stack-Based Buffer Overflow via SetDynamicDNSSettings Password Parameter
CVSS 9.8
CVE-2025-25742 CRITICAL
D-Link DIR-853 A1 FW1.20B07 - Stack-based Buffer Overflow via AccountPassword Parameter in SetSysEmailSettings
CVSS 9.8
CVE-2025-1187 MEDIUM
code-projects Police FIR Record Management System 1.0 - Stack-Based Buffer Overflow in Delete Record Handler
CVSS 5.3
CVE-2025-1240 HIGH
WinZip 18.0 7Z File Parser - Out-of-Bounds Write Code Execution
CVSS 8.8
CVE-2025-1052 HIGH
Mintty 3.7.5 Sixel Image Parser - Heap Buffer Overflow Code Execution
CVSS 8.8
CVE-2025-0910 HIGH
PDF-XChange Editor < 10.5.0.393 - Out-of-Bounds Write in U3D File Parser
CVSS 8.8
CVE-2025-0903 HIGH
PDF-XChange Editor < 10.4.2.390 - Remote Code Execution via RTF File Parsing Heap-based Buffer Overflow
CVSS 8.8
CVE-2025-21163 HIGH
Adobe Illustrator < 28.7.4 - Stack-based Buffer Overflow via Malicious File
CVSS 7.8
CVE-2025-21161 HIGH
Substance3D Designer < 14.1 - Out-of-bounds Write via Malicious File
CVSS 7.8
Details
Vulnerabilities 14,153
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits